Starting Thursday, Kaspersky deleted its anti-malware software from computers across the United States and replaced it with UltraAV’s antivirus solution without warning. […]
Mandiant Offers Clues to Spotting and Stopping North Korean Fake IT Workers
Mandiant shines the spotlight on the growing infiltration of US and Western companies by North Korean fake IT workers.
The post Mandiant Offers Clues to Spotting and Stopping North Korean Fake IT Workers appeared first on SecurityWeek.
Necro Trojan Infects Google Play Apps With Millions of Downloads
The Necro trojan was found in two Android applications in Google Play with a combined downloads count of over 11 million.
The post Necro Trojan Infects Google Play Apps With Millions of Downloads appeared first on SecurityWeek.
Android malware ‘Necro’ infects 11 million devices via Google Play
A new version of the Necro malware loader for Android was installed on 11 million devices through Google Play in malicious SDK supply chain attacks. […]
How to manage shadow IT and reduce your attack surface
In today’s fast-paced business environment, employees increasingly turn to unauthorized IT solutions, called Shadow IT, to streamline their work and boost productivity. This article explores the prevalence of shadow IT, the risks it poses and discusses strategies for managing it. […]
Ban Sought for Chinese, Russian Software and Hardware Used in Autonomous Vehicles on US Roads
In extreme situations, a foreign adversary could shut down or take simultaneous control of multiple vehicles operating in the United States, causing crashes and blocking roads.
The post Ban Sought for Chinese, Russian Software and Hardware Used in Autonomous Vehicles on US Roads appeared first on SecurityWeek.
CERT/CC Warns of Unpatched Critical Vulnerability in Microchip ASF
Microchip Advanced Software Framework (ASF) 3 is affected by a critical vulnerability that could lead to remote code execution.
The post CERT/CC Warns of Unpatched Critical Vulnerability in Microchip ASF appeared first on SecurityWeek.
ESET Patches Privilege Escalation Vulnerabilities in Windows, macOS Products
ESET has released patches for two local privilege escalation vulnerabilities in security products for Windows and macOS.
The post ESET Patches Privilege Escalation Vulnerabilities in Windows, macOS Products appeared first on SecurityWeek.
Versa Networks Patches Vulnerability Exposing Authentication Tokens
Versa Networks has released patches for a Versa Director vulnerability for which proof-of-concept (PoC) code exists.
The post Versa Networks Patches Vulnerability Exposing Authentication Tokens appeared first on SecurityWeek.
THN Cybersecurity Recap: Last Week’s Top Threats and Trends (September 16-22)
Hold on tight, folks, because last week’s cybersecurity landscape was a rollercoaster! We witnessed everything from North Korean hackers dangling “dream jobs” to expose a new malware, to a surprising twist in the Apple vs. NSO Group saga. Even the seemingly mundane world of domain names and cloud configurations had its share of drama. Let’s dive into the details and see what lessons we can glean